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ABSTRACT 


Now a day’s Internet of Things (loT) has become fastest computing technology which makes human life 
easier and comfortable. IoT is important for smart system like homes, transportation, farming etc. Using 
this robust technology improves efficiency, mobility and cost reduction. But due to heterogeneous nature of 
this IoT network, it has many security issues. The devices in IoT network are generally attacked by 
intruders. Hence risk of security is high in IoT network than other computing paradigm. This is the reason 
why traditional security techniques are not useful in these IoT network. A holistic solution is required for 
fulfilling security requirement of IoT network. The existing security issues like authentication, access 
control, network security are not fulfilling challenges in large IoT system having number of smart devices. 
In this communication of Cloud based IoT network sensor data is transmitted from IoT network to cloud. 
This path is vulnerable. The objective of this work is to secure this path by proposed Attack Detection and 
Mitigation using ML approach for Cloud Internet of Things (IoT) network. For this proposed work, license 
software NetSim Standard v13.3 is used for identification of malicious node in Cloud based IoT network. 
The work was tested with ML approaches used for Attack Detection and Mitigation and efficiency is 
calculated to improve the performance. Performance of proposed model is improved using Decision 
Tree(Train Score 100%,Test Score 99.39% ) comparing with K-Nearest Neighbors (Train Score 98.52% 
and Test Score 98.24%) and Logistic Regression algorithms(Train Score 92.87% and Test Score 92.31%). 
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1. INTRODUCTION 
Recent developments in IoT Technology have 
greatly make advances in lifestyle. About 75 


network. In this research paper we have use 
license software NetSim Standard v13.3 to 
simulate Cloud based JoT network for 


billion smart devices will get connect in IoT by 
end of 2025[1]. IoT has done revolution in 
technology in many areas of life. IoT architecture 
aims to connect us to everything, anywhere and at 
any time. IoT offers us more and more benefits but 
at the same time issues in security and privacy 
also arise. Top priorities in IoT architecture is its 
security and privacy. Security issues like attack on 
IoT network, attack at the time of sensor data 
transmission of IoT devices are important. To deal 
with this problems this research provides 
protection to IoT network.To avoid this security 
issues, Cloud based IoT network can be designed 
and tested using simulation. This can develop 
solutions to different vulnerabilities in JoT 


identification of malicious node in network. Here 
IoT anomalies can be detected with the help of 
machine learning algorithm as Machine Learning 
is used for training and solving complex problems 
based on previous experience. ML can be used 
here for attack detection and mitigation in IoT 
network. Hence we have used ML algorithms like 
Decision Tree, K Nearest Neighbors and Logistic 
Regression for identification of “normal”, 
“abnormal” behavior of IoT network. Another 
security issue arises with generation of large 
amount of data in Internet of Things network. IoT 
devices generates large amount of data and that is 
the reason IoT system requires cloud to store this 
big data. IoT device generates big data and 
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transmitted to gateway and further through this 
gateway transferred to cloud for storage using 
wireless channels. This path of sensor data 
transmission is vulnerable and security issues 
arise. To protect this end to end communication of 
sensor data from IoT network to cloud 
cryptography is a solution. But due to resource 
constrained devices cryptographic algorithms are 
not functioning well for IoT. Hence Lightweight 
cryptography can be useful. The communication 
from such devices can be secured by a mean of 
lightweight cryptography, a lighter version of 
cryptography [2]. 


Motivation 

Things in IoT is nothing but devices used in IoT 
network. Devices having internet capability, 
sensors and actuators, some embedded software can 
collect data which is nothing but sensors data. 
These devices are able to continuously sense data 
from environment and transmitted to the cloud for 
storage purpose and further for analysis purpose 
which will be used for the prediction of different 
applications. IoT devices consist of sensors for 
collecting the data and actuators for actually 
performing the activity which will be required at 
that time for IoT network. Internet connectivity 
with this things or devices connect all these devices 
with the external network which will be useful for 
communicating of these devices to external world 
and can possible sensors big data to be stored on 
cloud for further analysis purpose. IoT device 
collect data from external environment such as 
humidity, light intensity or temperature etc. This 
sensor data can be communicated either to other 
devices in the network or for cloud base server or 
storage for analysis purpose. Various IoT devices 
are available which can be useful depending on 
different applications of IoT. Smart wearable for 
health monitoring like smart watch. For smart 
automobile application smart Car is the example. 
Smart irrigation system devices like soil moisture 
monitoring devices smart water motor. So this 
devices are smart in the sense consist of different 
interfaces sensors memory _ storage internet 
connectivity to make it smart. This smart devices in 
IoT network can communicate with each other and 
can communicate with external world through the 
internet connectivity. It requires different protocols 
for communication purpose. As devices are 
generally integrated to the information network. 
IoT devices can have the capability to describe 
themselves and communicate with the information 
network. To this integration into the information 
network IoT system get smarter and the data from 


large number of connected with the monitoring IloT 
node can we aggregated into a single location 
which can be further use for the prediction which 
requires cloud. But by referring different literature 
it is found that different security issues are there in 
IoT network. 

Device Vulnerabilities: Many IoT devices may 
have inadequate security measures due to poor 
design or cost constraints, making them vulnerable 
to attacks. 

Data Privacy: Data Interception: Attackers may 
intercept and eavesdrop on data transmitted 
between IoT devices, leading to privacy breaches. 
Unauthorized access: Unauthorized access to 
sensitive data collected by IoT devices poses a 
significant privacy risk. 

Authentication and Authorization Issues: Weak 
Credentials: Devices with default or weak 
credentials can be easily compromised, allowing 
unauthorized access. Insufficient Authorization 
controls: Inadequate authorization mechanism may 
enable attackers to gain unauthorized control over 
IoT devices. 

Network Security: Denial of Service (DoS) attacks: 


Overloading JIoT devices or networks with 
excessive traffic can disturb normal operations. 
Compromised Supply Chain: Insecure 


manufacturing process or compromised supply 
chains can introduce vulnerabilities in IloT devices 
before they even reach end user. 

IoT protocol vulnerabilities: Weakness in 
communication protocols used by IoT devices may 
be exploited for unauthorized access or data 
manipulation. Also attackers may impersonate 
legitimate devices by exploiting weakness in 
communication protocols. 

Cloud Security: IoT devices often relay on cloud 
services for data storage and processing. Insecure 
connection to the cloud can expose sensitive data. 
To resolve this issues robust solution is required 
and hence we have implemented attack detection 
and mitigation with end to end secure cloud 
communication framework for cloud based IoT 
network. 


2. RELATED WORK 


A number of researchers from all around the world 
have worked on different security problems and 
their solutions using different techniques. Some 
related research articles are considered here for 
implementation of secure framework. 

In [3], the author presented analysis of existing 
mechanisms in three concepts like IDS, IPS and 
also IRS for IoT security as a second line defence 
mechanism. Also presented IDS with IPS and also 
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IRS which is used for classifying their deployment, 
data pre-processing methods, evaluation metrics, 
attacks, and datasets. Different IoT security issues 
and solutions are reviewed and gaps are identified 
that Machine Learning can address _ security 
services in IoT network [4]. Hence ML can be used 
for attack detection and Mitigation in IoT network. 
In [5], the author presented identification of attacks 
on network. Also how to identify anomalies and 
defend attacks is presented. Utilization of DDoS 
attack and different approaches were used to defend 
attack. 

In [6], author proposed a technique for IoT sensor 
data transmission in secure manner and efficient 
way. Three phases are proposed for providing 
security at the time of data transmission 1) 
registration ii) authentication and iti) data transfer 
phase. Information obtained at the receiver using 
Euclidean parameter which is shared by IoT sensor. 
This technique will definitely improve the data 
transmission security in loT network. 

In [7], author analyzed different techniques of 
Lightweight cryptographic algorithms for IoT 
network secure communication. Also analyzed 
different threats at different layers of IoT 
architecture. Merits and demerits of this algorithms 
in terms of ensuring security. As attack patterns on 
IoT are growing day by day, it demands 
improvement in Lightweight Cipher. 


Table 1: ML and DL Techniques used for Detection of 
different Attacks 


some issues are identified as shown in Table 1, that 
IoT network can prone to different types of attacks 
and ML techniques can be a solution for various 
types of attacks detection on IoT network. End to 
End communication of IoT devices is insecure in 
IoT network. All these issues required a robust 
solution to improve the performance. 


3. PROPOSED METHODOLOGY 


After doing this literature survey it is found that 
different security issues are exits in Cloud based 
IoT architecture which requires secure framework 
consists of attack detection and mitigation 
techniques as well as end to end secure cloud 
communication. Hence we are proposing robust 
solution for securing cloud based IoT network. 


3.1 IoT architecture 


IoT Architecture system consist of following layers. 
Figure.1 shows IoT architecture. 

Perception Layer: It consist of physical object that 
can sense environment and able to collect 
information from outside world. This layer consists 
of devices which are nothing but things to collect 
data from the outside world. After that this data can 
be transmitted to network layer. 

Network Layer: It is responsible for communication 
of objects with network devices, communicating 
and processing of sensor data can be possible with 
this. The IoT gateway is between devices and the 
cloud for communication purpose. 

Application Layer: This layer is for development 
and application of IoT.This layer classifies different 
services to a user. At this layer the services for 
users, such as the smart homes applications, health 


In this related work, literature is studied regarding 
IoT network security issues. Depending on that 


Q-Learning Denial of Solved the 
Service associated care applications, etc which make user life easy are 
optimality available. At this layer, security services like 
equations authentication integrity and confidentiality is 
Ref.9 Support Intrusion Detect Fads 
Vector Detection Wireless maintained. 
Machine and Sensor 
Naive Bayes Network 
attack 
successfully 
Ref. 10 ML approach Detection Survey of ML 
of Cyber techniques for 
attacks detection of 
cyber attacks 
Ref.11 Q-Learning Detection Accuracy in 
of Detection is 
Malware improved 
Ref.12 RF, K-Nearest | Detection Improved TP 
Neighbors of rate 
Malware 
Ref.13 Deep Transfer | Cyber Accuracy is Figure. 1Three Layered Architecture of loT 
Learning attack improved for 
sala) ae Due to this layered architecture of IoT network, it 


requires coordination of diverse technologies, 
distributed communication technologies and also 
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heterogeneous nature of devices prone it to 3.3 Proposed Design of Attack Detection and 


different types of cyber-attacks. Hence for end to 
end security of IoT network requires robust 
solution. In IoT networks, devices involved are 
constrained in resources, this is the basic reason 
they are vulnerable and prone to attacks. Hence 
security is the issue in design and deployment of 
IoT network. So for securing a vulnerable IoT 
network, deployment of Attack Detection and 
Mitigation model can be used to defend against 
attacks. For this ML based defending model 
structure is to improve the consistency efficiency of 
identification and mitigation of attacks on IoT 
network. Big data generated by IoT devices 
requires Cloud for storage purpose. Again secure 
storage of sensors data on cloud is a big challenge. 
Authentication of users and data integrity must be 
maintained at the time of Cloud data storage. Hence 
to avoid misuse of data Cryptography is a solution. 
But in IoT network devices are resource 
constrained so cryptography is not suitable. Instead 
Lightweight cryptography can be used for resource 
constrained device secure communication. With the 
help of Lightweight Cryptography — secure 
transmission of sensors data from IoT network to 
cloud can be possible. 


3.2 ML for Attack Detection and Mitigation 


ML is for detecting and mitigating security threats 
in IoT networks. The dynamic and complex nature 
of IoT ecosystems along with the sheer volume of 
data generated by connected devices makes 
traditional rule base approaches less effective. ML 
algorithms on the other hand can analyze large data 
sets identify patterns and adapt to evolving threats. 
Here are ways in which machine learning can be 
useful for attack detection in IoT networks. 
Implementing machine learning for attack detection 
in IoT network requires careful consideration of 
data privacy, model interpretability and the unique 
challenges pose by the IoT environment. 
Additionally ongoing monitoring and update to the 
machine learning model are essential to ensure their 
effectiveness against new and evolving threats. 
Machine learning techniques are increasingly being 
employed for attack detection in loT networks due 
to their ability to analyze large data sets, identify 
patterns and adapt to evolving threats. ML models 
can learn the normal behavior of IoT devices and 
network traffic. Any deviation from the learned 
patterns can be flag as anomalous potentially 
indicating a security threat. 


Mitigation for Securing Cloud based IoT 
network 


Malicious activity or intrusion can be monitor 
identified and mitigated with the help of attack 
detection and mitigation module. When sensor data 
is transferred from IoT devices it will pass from this 
path to reach to cloud storage. This path is 
vulnerable. Different malicious activities can be 
happened in the communication path. Hence to 
avoid this attack of IoT network it must have one 
attack detection and mitigation module. 


Figure.2 Design of Attack Detection & Mitigation for 
Cloud based IoT Network 


This Secure Cloud based IoT architecture consists 
of IoT Devices:IoT devices can sense data, 
communicate data and also process data with the 
help of sensors. Also it generates big data and 
transfer this data to gateway. 

Gateway: Gateway devices is between IoT devices 
and cloud server. It is worked as relay node. It 
receives IoT data from sensor devices and this 
sensor data forwarded to cloud. 

Attack Detection and Mitigation: In Figur.2 
attack on IoT network can be defended using 
Attack Detection and Mitigation is demonstrated. 
This module is placed in between IoT network and 
Cloud infrastructure. Packet Capturing of IoT 
devices data is done and this captured data which is 
live sensor data then transferred through IoT 
Gateway to Attack Detection and Mitigation 
Module. This module will predict normal and 
abnormal network traffic using ML approach. 
Normal and Abnormal Traffic can be identified 
using trained Machine Learning model. Finally 
normal traffic sensors data is stored on Cloud 
infrastructure. 

Cloud Server: This data is transmitted from 
gateway it will be received on cloud for storage 
purpose. IoT devices huge amount of data requires 
cloud to storage it. It may be public or private 
cloud.We have used License software NetSim 
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Standard v1l3.3 for this proposed architecture. 

Proposed design consists of following components. 

Table 2: Components involved in Designing Cloud based 
loT network 


1. IoT Sensor 16 
2. 6LoWPAN Gateway 1 
3. Routers 2 
4. Cloud Server 1 


Design of Cloud based IoT Network Scenario using 
license software NetSim Standard v13.3 

Step 1. Creating a Cloud based IoT Network 
Scenario using sensor nodes, 6LOWPAN gateway, 
routers and Cloud Server as shown in Figure.3. 
Configuring Devices and Links can be possible by 
setting properties to devices as well as links. 
Modeling Application Traffic is done by 
establishing application between Sensor node 1 and 
Cloud Server. 
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Figure.3 Design of Cloud Based IoT network 


Step2. Run Simulation for capturing live traffic 
between sensor nodes like Wireless _Sensor_1 upto 
Wireless Sensor_16 of Cloud based IoT network 
and also between Application! which is for 
capturing live traffic from Wireless Sensor _1 to 
Wired _Node_20 is shown in Figure.4. 
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Figure.4 NetSim Packet Animation 


Step 3. Enabling Plots and Traces can be made 
enabled for generating it after completion of 
simulation. Following metrics are generated after 
simulation is completed which consists of 
Application Matrics Table, TCP Metrics Table, 
Link Metrics Table, Queue Mterics Table as 
shown in Figure.5. 
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Figure.5 NetSim Simulation Results 


Step 4. Packet Trace option is available for 
generating log of Sensor data.Captured Live Sensor 
data is now can be analysed for attack detection and 
mitigation as shown in Figure.6. 


ag 


Figure 6:NetSim Packet Trace Window 


We have created this Cloud based IoT network in 
which Sinkhole attack detection can be possible. It 
will identify malicious node and stop receiving and 
transmitting data through this malicious node. 
When we run the simulation broadcasting of 
message is done and all sensors starts transmitting 
packets. After malicious activity identified by some 
node, attack is identified and malicious nodes are 
declared. Immediately transmission and receiving 
of packet are stopped from this node. This can be 
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identified in Packet Trace File after completing this 
simulation. Packet Trace file consists of 
Transmitter ID and Receiver ID column in which 
this malicious node not found. It means packet 
transmission is stopped from this malicious nodes. 
In this architecture Sensor Node 6 and Sensor Node 
8 is found to be malicious. In this malicious node 
advertise a fake rank.This will form fake routes. 
After receiving message packet, it drops the packet 
information. This attack affects the performance of 
IoT network protocol such as RPL. 


3.4 Proposed End to End Secure Cloud IoT 
Communication 


ToT 
Sensor Gateway Cloud 
= +] 7 


End to End Secure Cloud loT communication Path 


Figure.7 End to End secure Cloud loT communication 


In Figure. 7 end to end secure Cloud IoT 
communication path is shown. When sensor data 
from this devices is transmitted to loT gateway it is 
encrypted and encrypted sensor data is generated 
with the help of Lightweight cryptography. This 
encrypted sensor data then can be transmitted 
though gateway for storage purpose on cloud. So 
end to end communication between this devices and 
cloud is secured as data is transmitted through 
wireless channel but it is in encrypted format. So no 
one is able to hack this information and 
communication path becomes secure. 


4. RESULTS AND DISCUSSION 


Implementation of Attack Detection and Mitigation 
is successfully done. Also using three types of ML 
techniques, performance analysis can be done. Here 
Machines learning approaches are used to detect 
“Normal” and “Anomaly” in IoT network traffic. 
Based on Train and Test Scores, best suited 
algorithm is found. 


4.1 Logistic Regression 


Logistic regression is used for predicting of 
Instance belonging to the class. The input to this is 
a output taken from linear regression. For the 
purpose of estimating probability for the class 
sigmoid function is used. After training a Machine 


Learning model using Logistic Regression 
Algorithm, Train Score is found 92.87% and Test 
Score is found 92.31% as shown in Figure 8. 


In [30]: 1g model = LogisticRegression(random state = 42) 
Ig model.fit(x train, y train) 
out [30]: |, LogisticRegression 


LogisticRegression(random_state=42) 


In [34]: Ig train, 1g test = 1g model.score(x train , y train), 1g model.score(x test , y test) 


print(f"training Score: {1g train}") 
print(f"test Score: {Ig test}") 


Training Score: @.9287739593966202 
Test Score: 0.9231278115963678 


Figure.8 Logistic Regression 


4.2 K NearestNeighbors (KNN) 


In KNN_ non-parametric approach used for 
classification of data samples. Sample of unknown 
class are decided according to the majority number 
I its nearest neighbor. KNN is also used for 
intrusion and anomaly detection. It can be used for 
classifying both normal and abnormal system 
behavior. After training a Machine Learning model 
using K Nearest Neighbors Algorithm, Train Score 
is found 98.52% and Test Score is found 98.24% as 
shown in Figure 9. 


In [36]: KAW model = KNeighborsClassitier(n neigtors=study KIMl,best trial parans{ xIN.n neigtbors']) 
AIN model, Fit(K tein, y train) 


AN train, KIN test = Kill node], score(K train, y train), KIN.nodel,score(x test, y test) 


grint(f"Train Scores {KM train}") 
arint(f"Test Scores {ANH test}") 


Train Score: 6,985255755906082 
Test Score: @,982492752050807L 


Figure.9 K Nearest Neighbors (KNN) 


4.3 Decision Tree 


Decision Tree is used for classification by sorting 
feature values. Decision Tree has two main 
approaches 1) Building ii) Classification. Decision 
Tree is constructed in building phase. Classification 
is for constructing tree. Decision Tree is a approach 
to ensure security to detect malicious traffic sources 
in a network. After training a Machine Learning 
model using Decision Tree Algorithm, Train Score 
is found 100% and Test Score is found 99.39% as 
shown in Figure 10. 


nner 
3781 


Journal of Theoretical and Applied Information Technology 
15" May 2024. Vol.102. No 9 


© Little Lion Scientific 


ISSN: 1992-8645 


E-ISSN: 1817-3195 


In [41]: dt = DecisionTreeClassifier (aax features = study dt best trial parans['t max features'], max depth = study dt.best trial, paras) 
t.fit(x train, y train) 


it train, dt test = dt.score(x train, y train), dt.score(x test, y test) 

rint(f*Train Score: {dt_train}’) 

rint(F"Test Score: {dt test}") 

« ) 


Train Score: 1.0 
fest Scores @,9930137337920084 


Figure. 10 Decision Tree 


4.4 Comparison of Train and Test Scores of 
Machine Learning Models 


Machine Learning models are trained using KNN, 
Logistic Regression and Decision Tree algorithms also 
Train and Test Scores are calculated are as shown below 
Table. 1. Amongst all three Machine Learning 
Algorithms Decision Tree has highest Train Score and 
Test Score found hence performance of Decision tree is 
best comparing with other algorithms. 


Table 3: Comparison of Train and Test Scores of 
_ Machine ee Models _ 


_ | Train Score _|___ Test Score 

0. 985256 0.982403 

Logistic 0.928774 0.923128 
Regression 

Decision Tree 1 0.993914 


4.5 Precision and Recall for Machine Learning 
Algorithms 


Comparison of Precision and Recall for KNN, Logistic 
Regression and Decision Tree Classifier is found that is 
shown in below Figure. 11. Comparing with all 
algorithms Decision Tree is having best values found for 
Mean Precision and Mean Recall. 


SHARERAKEAERAEE KNOi shborsClassifier Model Validation **************#* 
Mean precision: 
98.45 % +- 0.48 


Mean recall: 
98.24 % +- 0.54 


seoEKEEEOOO Logi sticRegression Model Validation *******+##««x# 
Mean precision: 
91.35 % +- 0.57 


Mean recall: 
95.72 % +- 0.67 


FEHEKEHHAXERES DecisionTreeClassifier Model Validation ************#** 
Mean precision: 
99.54 % +- 0.18 


Mean recall: 
99.51 % +- 0.16 


Figure.11 Comparison of Precision and Recall for 
Machine Learning Algorithms 


4.6 Graph representing Precision and Recall for 
Machine Learning Algorithms 

Following Figure.12 shows Graphical representation 
comparison of Precision and Recall for KNN, Logistic 
Regression and Decision Tree. 


«Axes: > 


000 
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Fig.12 Graph representing Precision and Recall for 
Machine Learning Algorithms 
In Figure.13 F1 Score for KNN,Logistic Regression and 
Decision Tree are represented. F1 Score is found to be 
highest for Decision Tree Classifier. 
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Figure.13 Graph representing F1 Score for Machine 
Learning Algorithms 


In proposed Attack Detection and Mitigation 
module, output is a value “1” for “anomaly” or “0” 
for “normal” and value for prediction is correct or 
incorrect. So there are four relationships between 
prediction and labels are as shown in Table.2: True 
positive (TP), False positive (FP), True negative 
(TN) and False negative (FN).TP: network found 
anomaly and prediction is also anomaly .FP: 
network found normal but prediction is anomaly. 
TN: network found normal and prediction is 
normal. FN: network found anomaly and prediction 
is normal. Following equations shows True positive 
rate, True Negative rate, Accuracy and precision of 
Machine Learning Model. True positive rate= True 
positive/ (True positive + False negative) 

True Negative rate= True negative / (True negative 
+ False positive) Accuracy= (True positive + True 
negative)/ (True positive + True negative + False 
positive + False negative) 


Smee" 
3782 


DecisionTiestufer 


i precion 
ral 


Journal of Theoretical and Applied Information Technology Zs 
15" May 2024. Vol.102. No 9 


© Little Lion Scientific 


ISSN: 1992-8645 


www. jatit.org 


2. 
sri 


E-ISSN: 1817-3195 


Precision= True positive / (True positive + False 
positive) 


Table 4: Relationships between labels and 


predictions 
Results Labels Predictions 
TP Anomaly Anomaly 
FP Normal Anomaly 
™ Normal Normal 
FN Anomal Normal 


5. CONCLUSION AND FUTURE SCOPE 


In this proposed research, Simulation design using 
licence software NetSim Standard v13.3, Machine 
Learning approach and Lightweight Cryptographic 
algorithm are used for implementation of secure 
Cloud based IoT network which will resolve the 
problem of IoT security to larger extent. This 
research paper demonstrated that for the purpose of 
design of Cloud based IoT network simulation is 
used which can identify Malicious Node in 
network, Machine Learning approach can be used 
for IoT network Attack Detection and Mitigation 
and Lightweight Cryptography is used for End to 
End secure communication. The performance 
analysis of this model can be identified by 
calculating Train Score and Test Score for different 
Machine Learning models based on true positive 
rate, true negative rate, accuracy and precision. In 
this research work comparison of performance of 
Logistic Regression, KNN, and Decision Tree 
algorithms is done for Attack Detection and 
Mitigation of cloud based IoT network. It is found 
that Performance of proposed model is improved 
using Decision Tree(Train Score 100%,Test Score 
99.39% ) as compare to K Nearest Neighbors 
(Train Score 98.52% and Test Score 98.24%) and 
Logistic Regression algorithms(Train Score 92.87% 
and Test Score 92.31%). In the future, Deep 
Learning algorithms can be applied to improvised 
Attack Detection and Mitigation for getting better 
accuracy in prediction of type of attacks on IoT 
networks. 
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